OpenJDK: Improper parsing of crossdomain.xml files (intended access restriction bypass) (6798948)

The Java Plug-in in Java SE Development Kit JDK and Java Runtime Environment JRE 6 Update 12, 11, and 10 does not properly parse crossdomain.xml files, which allows remote attackers to bypass intended access restrictions and connect to arbitrary sites via unknown vectors, aka CR 6798948...

OpenJDK JAX-WS service endpoint remote Denial-of-Service (6630639)

Unspecified vulnerability in the lightweight HTTP server implementation in Java SE Development Kit JDK and Java Runtime Environment JRE 6 Update 12 and earlier allows remote attackers to cause a denial of service probably resource consumption for a JAX-WS service endpoint via a connection without...

OpenJDK LDAP client remote code execution (6737315)

Unspecified vulnerability in the LDAP implementation in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier; 6 Update 12 and earlier; SDK and JRE 1.3.124 and earlier; and 1.4.219 and earlier allows remote LDAP servers to execute arbitrary code via unknown vector...

PT-2009-4155 · Sun +1 · Sun Java Runtime Environment +1

Name of the Vulnerable Software and Affected Versions: Sun Java SE Runtime Environment aka JRE 6 Update 13 Description: The issue is related to multiple buffer overflows in the Deployment Toolkit ActiveX control. These overflows can be triggered by a long string argument to certain methods,...

OpenJDK allows to list files within the user home directory (6484091)

Unspecified vulnerability in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier allows untrusted applications and applets to list the contents of the operating user's directory via unknown vectors...

OpenJDK Privilege escalation in command line applications (6733959)

Stack-based buffer overflow in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier allows locally-launched and possibly remote untrusted Java applications to execute arbitrary code via a JAR file with...

OpenJDK Truetype Font processing vulnerability (6751322)

Integer overflow in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.218 and earlier; and SDK and JRE 1.3.123 and earlier might allow remote attackers to execute arbitrary code via a crafted TrueType font file, which...

JRE allows unauthorized memory read access via a crafted ZIP file

Unspecified vulnerability in Java Runtime Environment JRE for Sun JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.218 and earlier; and SDK and JRE 1.3.123 or earlier allows untrusted applets and applications to read arbitrary memory via a crafted ZIP file...

OpenJDK JMX allows illegal operations with local monitoring (6332953)

Unspecified vulnerability in the Java Management Extensions JMX management agent in Sun Java Runtime Environment JRE in JDK and JRE 6 Update 6 and earlier and JDK and JRE 5.0 Update 15 and earlier, when local monitoring is enabled, allows remote attackers to "perform unauthorized operations" via...

JRE allows unauthorized file access and connections to localhost

Unspecified vulnerability in Java Runtime Environment JRE with Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.218 and earlier; and SDK and JRE 1.3.123 and earlier allows code that is loaded from a local filesystem to read arbitrary files and make...

HP-UX Update for JRE Bytecode Verifier HPSBUX00187

Check for the Version of JRE Bytecode Verifier OpenVAS Vulnerability Test HP-UX Update for JRE Bytecode Verifier HPSBUX00187 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

HP-UX Update for HP-UX Pkg HPSBUX02196

Check for the Version of HP-UX Pkg OpenVAS Vulnerability Test HP-UX Update for HP-UX Pkg HPSBUX02196 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

HP-UX Update for Java Runtime Environment (JRE) HPSBUX01044

Check for the Version of Java Runtime Environment JRE OpenVAS Vulnerability Test HP-UX Update for Java Runtime Environment JRE HPSBUX01044 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

HP-UX Update for Java Runtime Environment HPSBUX00267

Check for the Version of Java Runtime Environment OpenVAS Vulnerability Test HP-UX Update for Java Runtime Environment HPSBUX00267 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

HP-UX Update for Java Runtime Environment (JRE) HPSBUX01044

Check for the Version of Java Runtime Environment JRE OpenVAS Vulnerability Test HP-UX Update for Java Runtime Environment JRE HPSBUX01044 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

HP-UX Update for Java JRE and JDK HPSBUX02284

Check for the Version of Java JRE and JDK OpenVAS Vulnerability Test HP-UX Update for Java JRE and JDK HPSBUX02284 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

HP-UX Update for Java Runtime Environment HPSBUX00267

Check for the Version of Java Runtime Environment OpenVAS Vulnerability Test HP-UX Update for Java Runtime Environment HPSBUX00267 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

HP-UX Update for Java VM Classloader (J2SE) HPSBUX00295

Check for the Version of Java VM Classloader J2SE OpenVAS Vulnerability Test HP-UX Update for Java VM Classloader J2SE HPSBUX00295 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

JRE allows unauthorized file access and connections to localhost

Unspecified vulnerability in Java Runtime Environment JRE with Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.218 and earlier; and SDK and JRE 1.3.123 and earlier allows code that is loaded from a local filesystem to read arbitrary files and make...

OpenJDK Buffer overflow in image processing (6726779)

Buffer overflow in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.218 and earlier; and SDK and JRE 1.3.123 and earlier might allow remote attackers to execute arbitrary code, related to a ConvolveOp operation in the...